CVE-2018-20242

Опубликовано: 11 фев. 2019

Источник: ubuntu

Приоритет: medium

CVSS2: 4.3

CVSS3: 6.1

Описание

A carefully crafted URL could trigger an XSS vulnerability on Apache JSPWiki, from versions up to 2.10.5, which could lead to session hijacking.

Релиз	Статус	Примечание
bionic	DNE
cosmic	DNE
devel	DNE
disco	DNE
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needs-triage]
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	DNE	trusty was needs-triage
upstream	needs-triage
xenial	DNE

Показывать по

4.3 Medium

CVSS2

6.1 Medium

CVSS3

CVE-2018-20242

CVSS3: 6.1

nvd

почти 7 лет назад

A carefully crafted URL could trigger an XSS vulnerability on Apache JSPWiki, from versions up to 2.10.5, which could lead to session hijacking.

CVE-2018-20242

CVSS3: 6.1

debian

почти 7 лет назад

A carefully crafted URL could trigger an XSS vulnerability on Apache J ...

GHSA-5q75-cxcq-wr26

CVSS3: 6.1

github

почти 7 лет назад

Cross-site Scripting in jspwiki-war

BDU:2020-00138

CVSS3: 6.1

fstec

около 7 лет назад

Уязвимость программного обеспечения на основе JSP технологий Apache JSPWiki, позволяющая нарушителю осуществить межсайтовую сценарную атаку

4.3 Medium

CVSS2

6.1 Medium

CVSS3